on the principal node (as root): ssh-keygen -t rsa press 'Enter' when prompted for a password

copy the public and private keys to the other brick nodes: scp .ssh/id_rsa.pub root@<brick>:.ssh/

copy the public key to the other brick nodes' authorized hosts: scp .ssh/id_rsa.pub root@<brick>:.ssh/authorized_keys

chcon the authorized_keys file on each of the nodes: ssh root@<brick> chcon -t ssh_home_t .ssh/authorized_keys

set up apache on the principal brick node

check that httpd RPM is installed: rpm -qa | grep httpd

install mod_ssl: sudo yum install mod_ssl

N.B. by default mod_ssl uses the cert in /etc/pki/tls/certs/localhost.crt (a.k.a. /etc/ssl/certs/localhost.crt). The CN in this cert is the hostname when the system was installed, so if you change the hostname along the way then this will no longer match. You can generate your own cert and change /etc/httpd/conf.d/ssl.conf to point at it.